CN101916459B - Safe electronic ticket method - Google Patents
Safe electronic ticket method Download PDFInfo
- Publication number
- CN101916459B CN101916459B CN2010102438968A CN201010243896A CN101916459B CN 101916459 B CN101916459 B CN 101916459B CN 2010102438968 A CN2010102438968 A CN 2010102438968A CN 201010243896 A CN201010243896 A CN 201010243896A CN 101916459 B CN101916459 B CN 101916459B
- Authority
- CN
- China
- Prior art keywords
- ticket
- electronic ticket
- user
- electronic
- mobile phone
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Abstract
The invention discloses a safe electronic ticket method belonging to the technical field of communication. The invention is based on the application environment of an NFC (Near Field Communication) technology, ensures the use requirements of an electronic ticket for convenience and flexibility by utilizing a P2P (Peer-To-Peer) communication protocol NFC-IP (Internet Protocol) in an NFC standard and provides a safe security mechanism for the electronic ticket on the basis of on a ticket-checking authentication mechanism of a PKI (Public Key Infrastructure) system and a bonding mechanism of the electronic ticket so that the electronic ticket is not only rapid and flexible to use, but also safe and reliable.
Description
Technical field
The invention belongs to communication technical field, relate to a kind of electronic ticket method based on security mechanism.
Background technology
The rise of electronic bill makes the consumer can buy various tickets easily; The fast development with the short-range communication mode of being widely used along with various mobile devices; Make people not only can buy various tickets quickly and easily, can also use them at any time easily through mobile device terminal.
Retrieval through to the prior art document is found; One Chinese patent application number is: 200410002191.1; Name is called the electronic bill system that uses the rectangular strip font code; And one Chinese patent application number is: 200610071392.6, and name is called two-dimension code and the application process of mobile phone on ticketing system, and the type of service of electronic ticket is the two-dimension code form in these two documents.The mode of this electronic ticket is easy, flexible, and the user can arbitrarily transmit, duplicate own perhaps others' electronic ticket of use.But this electronic ticket is only checked the validity of electronic ticket information when ticket checking, can't guarantee that the electronic ticket of duplicating is not abused.Therefore in security, can not get ensureing, probably can produce other users and use others' electronic ticket, also be unfavorable for the safety management of Ticketing Centre simultaneously.One Chinese patent application number is: 200810238924.X, name is called a kind of electronic bill system, device and method.Use the electronic bill system of set form in this documents; Electronic ticket is sent in the safety storing chip of portable terminal; This method and technology security has obtained certain guarantee, but this safe guarantee is to have sacrificed electronic ticket convenience and dirigibility in the use.
It is thus clear that prior art all has shortcoming separately, all can not satisfy in use convenient, the flexible and safe unification of electronic ticket, there is the contradiction between convenient, flexible use of electronic ticket and the electronic ticket safety guarantee in present electronic ticket business system.
Summary of the invention
The technical matters that the present invention will solve is to propose a kind of safe electronic ticket method flexible and convenient to use to the defective that prior art exists.
A kind of safe electronic ticket method of the present invention; Its electronic ticket business system comprises three parts: ticket management center, mobile subscriber and ticket checking device, said method comprise based on the applied environment of near-field communication technology (NFC), based on the ticket checking authentication mechanism and the electronic ticket binding mechanism of PKI system.
Wherein, utilize the point to point protocol NFC-IP in the NFC standard to guarantee the request for utilization that electronic ticket is convenient, flexible, concrete implementation procedure based under the NFC applied environment:
I) anti-collision that carries out radio-frequency field detects;
II) initialization;
III) selects the NFC mode of operation;
IV) negotiation communication parameter;
V) data exchange agreement;
VI) read/write data;
VII) closes connection.
Wherein based on the concrete implementation procedure of the ticket checking authentication mechanism of PKI system:
1) user that takes ticket uses the mobile phone with near field communication (NFC) function near the ticket checking device, this moment mobile phone the near-field communication controller magnetic field of sensing the ticket checking device, and judge the mode of operation of near-field communication, then carry out corresponding mode switch;
2) smart card of mobile phone is an Application Protocol Data Unit with extraneous communication data interface; Application Protocol Data Unit had both been formulated command format; Also formulated response format, the ticket checking device produces random number and sends the Application Protocol Data Unit log-in command, selects the Java of smart card target to use;
3) the near-field communication controller of mobile phone receives the field signal of the log-in command that the ticket checking device sends, and sends to smart card system to the log-in command that receives through the interface with mobile phone intelligent card;
4) smart card system is discerned corresponding Java application through ID number of using, and the Java of electronic ticket uses and receives processing command, passes to the past near-field control device to the random number of crossing through encrypted private key and the information of electronic ticket;
5) the past near-field control device is transmitted the information of random number ciphertext and electronic ticket;
6) the ticket checking device is given the random number plain text and the information of the ciphertext received and electronic ticket that the authentication module check bearer at ticket management center is whether legal to hold effective electronic ticket;
7) backtrack test result accomplishes ticket checking.
This process uses the benefit of random number to be, can prevent Replay Attack.Because the information of electronic ticket is fixed,, but, will cause other disabled users to use this electronic ticket just in case the ciphertext after encrypting is suffered stealing of other malicious attacker even the user that takes ticket uses the encrypted private key of oneself.After using random number to confirm comparison, even if ciphertext is stolen, other users also can't use, because the random number that each ticket checking is produced is all different.
The binding mechanism of electronic ticket is meant that the attribute information of electronic ticket and user's personal information carry out effective related; Be exactly that the attribute information of electronic ticket and the PKI of user certificate carry out related specifically; Wherein, User's PKI can related a plurality of electronic ticket be used, but an electronic ticket only allows to be bound by some users' private key, and implementation procedure is following:
A) user adopts the HTTPS agreement to sign in to the web-site at ticket management center through the mode of Web when using the mobile phone booking;
B) ticket management center force users oneself is provided certificate as identification user's foundation, if the user does not have digital certificate, need arrive CA server application certificate this moment;
C) user signs in to the CA center and carries out certificate request; Call the inner service of Java card generate signature key to and key to adding in the inner secure storage areas; After signing to log-on message in card inside, be submitted to the CA center simultaneously, the signature server feedback digital certificate at CA center is given portable terminal;
D) after the user confirmed to buy, user's PKI and other information can be noted in the ticket management center, and the information of binding this electronic ticket and customer digital certificate is so that prepare for user's ticket checking;
E) background data base can lock this electronic ticket, makes it bought use by other users once more, files an application to change ticket, returns ticket or ticket checking up to this user that takes ticket.
Safe electronic ticketing service method based on NFC proposed by the invention; Guarantee electronic ticket do not losing under the various use scenes conveniently, flexibly on the basis; Realized the safe and reasonable use of electronic ticket in the safety storing and the electronic ticket of smart card terminal; Safe security mechanism is provided for it, makes electronic ticket obtain effectively unifying in the quick use flexibly with on the safe reliability.
Description of drawings
Fig. 1: electronic ticket business system figure of the present invention;
Fig. 2: NFC equipment connection procedure figure of the present invention;
Fig. 3: among the present invention based on the ticket checking implementation procedure figure of PKI system;
Fig. 4: electronic ticket binding relationship figure among the present invention.
Embodiment
As shown in Figure 1.Electronic ticket business system comprises three parts.
Ticket management center 1: can regard the service provider as, also can be Virtual network operator.The respective services and the function of relevant electronic bill mainly are provided, comprise inquiry, ticketing, ticket booking, returned ticket etc.With respect to the mobile subscriber, the form of expression at ticket management center has multiple, can be Web service, also can be cellphone subscriber's STK menu.So promptly made things convenient for mobile subscriber's various operations, also helped the service provider and electronic ticket is managed and use electronic ticket.
The mobile subscriber 2: the actual user of electronic ticket.To associative operations such as the inquiry of electronic ticket, bookings through the STK menu of mobile phone or the formal net operation of Web.The modes of payments that booking is adopted can be used Web bank's payment correlative charges (under the form of Web), directly deduction (STK menu, this needs to cooperate with the operator) from mobile phone account.When ticket checking, mobile subscriber's mobile phone need be supported closely contactless communication mode.Communicate by letter such as NFC.In addition, the user can install Java applet application program and comes electronic ticket is stored and safe operation such as use.
Ticket checking device 3: check the legitimacy of the user's that takes ticket electronic ticket,, prevent fake user use electronic ticket, guarantee the legal use of electronic ticket with the information of backstage (ticket checking of the ticket management center) electronic ticket of comparing.The communication that the ticket checking device is adopted can have various ways, comprises infrared, bluetooth, various radio-frequency techniques etc., wherein under the NFC technology, needs the contactless calliper model of compatible ISO14443, makes things convenient for the use of Mifare card, Felica card.
Fig. 2 has shown NFC equipment connection procedure figure.NFC is when using the NFC-IP protocol communication, and at first, the anti-collision that need carry out radio-frequency field detects; The NFC mode of operation is selected in initialization then; Follow the parameter in the agreement protocol communication process, so that carry out the operation of exchanges data; After read-write operation finished, communication was accomplished, and closes connection.
Fig. 3 has shown among the present invention the ticket checking implementation procedure figure based on the PKI system.
At first, the user that takes ticket uses the mobile phone with NFC communication function near the ticket checking device, this moment mobile phone the NFC controller magnetic field of sensing the ticket checking device, and judge the mode of operation of NFC, then carry out corresponding mode switch;
Second; The smart card of mobile phone is an Application Protocol Data Unit with extraneous communication data interface, and Application Protocol Data Unit had both been formulated command format, had also formulated response format; The ticket checking device produces random number and sends the Application Protocol Data Unit log-in command, selects the Java of smart card target to use;
The 3rd, the near-field communication controller of mobile phone receives the field signal of the log-in command that the ticket checking device sends, and sends to smart card system to the log-in command that receives through the interface with mobile phone intelligent card;
The 4th, smart card system is discerned corresponding Java application through ID number of using, and the Java of electronic ticket uses and receives processing command, passes to the NFC controller to the random number of crossing through encrypted private key and the information of electronic ticket;
The 5th, the NFC controller is transmitted the information of random number ciphertext and electronic ticket;
The 6th, the ticket checking device is given the random number plain text and the information of the ciphertext received and electronic ticket that the authentication module check bearer at ticket management center is whether legal to hold effective electronic ticket.
The 7th, the backtrack test result accomplishes ticket checking.
Fig. 4 has shown electronic ticket binding relationship figure among the present invention.It is effective related that the attribute information that the binding of electronic ticket is meant electronic ticket and the personal information of using the user are carried out, and the information (such as attribute informations such as the ID of electronic ticket, Time of Days) that is exactly electronic ticket is specifically carried out related with the PKI of user certificate.Wherein, user's PKI can related a plurality of electronic ticket be used, but an electronic ticket only allows to be bound by some users' private key.User A can hold electronic ticket 1 and electronic ticket 4, and user B can hold electronic ticket 2 and electronic ticket 3, and user C can hold electronic ticket 5.A user can hold many electronic ticket, and an electronic ticket can only be held by a user.The corresponding relation of user and electronic ticket is more than 1 pair.
Claims (1)
1. safe electronic ticket method; Its electronic ticket business system comprises ticket management center, mobile subscriber and ticket checking device and based on the applied environment of near-field communication technology NFC; It is characterized in that: said method also comprises based on the ticket checking authentication mechanism of PKIX PKI system and electronic ticket binding mechanism; Wherein said ticket checking authentication mechanism based on PKIX PKI system, concrete implementation procedure is following:
1) user that takes ticket uses the mobile phone with near field communication (NFC) function near the ticket checking device, this moment mobile phone the near-field communication controller magnetic field of sensing the ticket checking device, and judge the mode of operation of near-field communication, then carry out corresponding mode switch;
2) smart card of mobile phone is an Application Protocol Data Unit with extraneous communication data interface; Application Protocol Data Unit had both been formulated command format; Also formulated response format, the ticket checking device produces random number and sends the Application Protocol Data Unit order, selects the Java of smart card target to use;
3) the near-field communication controller of mobile phone receives the field signal that the ticket checking device sends, and sends to smart card system to the log-in command that receives through the interface with mobile phone intelligent card;
4) smart card system is discerned corresponding Java application through ID number of using, and the Java of electronic ticket uses and receives processing command, passes to the past near-field control device to the random number of crossing through encrypted private key and the information of electronic ticket;
5) the past near-field control device is transmitted the information of random number ciphertext and electronic ticket;
6) the ticket checking device is given the random number plain text and the information of the ciphertext received and electronic ticket that the authentication module check bearer at ticket management center is whether legal to hold effective electronic ticket;
7) backtrack test result accomplishes ticket checking;
Described electronic ticket binding mechanism, implementation procedure is following:
A) user adopts the HTTPS agreement to sign in to the web-site at ticket management center through the mode of Web when using the mobile phone booking;
B) ticket management center force users provides the foundation of the certificate of oneself as the identification user, if the user does not have digital certificate, needs this moment to CA server application certificate;
C) user signs in to the CA center and carries out certificate request; Call the inner service of Java card generate signature key to and key to adding in the inner secure storage areas; After signing to log-on message in card inside, be submitted to the CA center simultaneously, the signature server feedback digital certificate at CA center is given portable terminal;
D) after the user confirmed to buy, user's PKI and other information can be noted in the ticket management center, and the information of binding this electronic ticket and customer digital certificate is so that prepare for user's ticket checking;
E) background data base can lock this electronic ticket, makes it bought use by other users once more, files an application to change ticket, returns ticket or ticket checking up to this user that takes ticket.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010102438968A CN101916459B (en) | 2010-08-03 | 2010-08-03 | Safe electronic ticket method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010102438968A CN101916459B (en) | 2010-08-03 | 2010-08-03 | Safe electronic ticket method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN101916459A CN101916459A (en) | 2010-12-15 |
| CN101916459B true CN101916459B (en) | 2012-01-04 |
Family
ID=43323962
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2010102438968A Expired - Fee Related CN101916459B (en) | 2010-08-03 | 2010-08-03 | Safe electronic ticket method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101916459B (en) |
Families Citing this family (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102110312B (en) * | 2010-12-27 | 2013-11-13 | 东莞宇龙通信科技有限公司 | Electronic ticket verifying method, verification system and mobile terminal |
| CN102222368A (en) * | 2011-04-28 | 2011-10-19 | 王鑫 | Electronic ticket authentication system applying short-distance communication technology and detection method |
| CN103268670A (en) * | 2013-02-28 | 2013-08-28 | 广东岭南通股份有限公司 | Electronic ticket interaction method and device based on near field communication (NFC) terminal |
| CN103310278B (en) * | 2013-06-17 | 2017-03-01 | 广东华大互联网股份有限公司 | Ticketing service application system based on the close algorithm of state, booking method and ticket management method |
| CN104282091A (en) * | 2013-07-02 | 2015-01-14 | 郁晓东 | Bill data generating/transmitting/storing/authenticating method |
| CN105574629B (en) * | 2014-10-13 | 2020-08-21 | 航天信息股份有限公司 | Electronic ticket checking method and system based on graphic coding |
| CN104902118A (en) * | 2015-06-01 | 2015-09-09 | 张萍 | Self-service crew working system based on internet of things |
| CN105184871B (en) * | 2015-09-06 | 2017-07-11 | 宁波大学 | Tourism box-office managing system and its management method based on mobile near-field communication |
| CN112565069B (en) * | 2020-11-30 | 2023-04-07 | 网络通信与安全紫金山实验室 | Wireguard network card equipment, link aggregation method and link aggregation routing method |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101430800A (en) * | 2008-12-04 | 2009-05-13 | 中国移动通信集团公司 | Electronic bill system, apparatus and method |
| US20100078475A1 (en) * | 2008-09-30 | 2010-04-01 | Apple Inc. | System and method for transportation check-in |
-
2010
- 2010-08-03 CN CN2010102438968A patent/CN101916459B/en not_active Expired - Fee Related
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20100078475A1 (en) * | 2008-09-30 | 2010-04-01 | Apple Inc. | System and method for transportation check-in |
| CN101430800A (en) * | 2008-12-04 | 2009-05-13 | 中国移动通信集团公司 | Electronic bill system, apparatus and method |
Non-Patent Citations (5)
| Title |
|---|
| .NFC技术引领移动支付新时代.《数字社区&智能家居》.2009, |
| 卫国杰.NFC 技术在我国客运专线客票中的.《交通运输工程与信息学报》.2010,第8卷(第1期), * |
| 本刊编辑部 |
| 本刊编辑部;.NFC技术引领移动支付新时代.《数字社区&智能家居》.2009, * |
| 李翅.手机钱包的相关技术介绍、基于JavaCard的NFC手机支付安全.《基于JavaCard和NFC技术的手机钱包关键技术研究》.2009,9-10、38-39. * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN101916459A (en) | 2010-12-15 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101916459B (en) | Safe electronic ticket method | |
| JP6092415B2 (en) | Fingerprint authentication system and fingerprint authentication method based on NFC | |
| CN101394615B (en) | Mobile payment terminal and payment method based on PKI technique | |
| EP2487629B1 (en) | Secure smart poster | |
| CN101465019B (en) | Method and system for implementing network authentication | |
| EP2352252B1 (en) | Key distribution method and system | |
| CN103259667B (en) | The method and system of eID authentication on mobile terminal | |
| CN106233689B (en) | Method and apparatus for protecting mobile application | |
| US20190165947A1 (en) | Signatures for near field communications | |
| CN104038924B (en) | Realize the method and system of Resource Exchange information processing | |
| CN104392190B (en) | The method and device of virtual card hypostazation is carried out by mobile terminal device | |
| CN102202306B (en) | Mobile security authentication terminal and method | |
| CN104778773A (en) | System and method for controlling entrance guard by mobile phone | |
| CN102222368A (en) | Electronic ticket authentication system applying short-distance communication technology and detection method | |
| CN102737308A (en) | Mobile terminal and method and system for inquiring information of intelligent card | |
| CN102204111A (en) | Systems, methods, and computer readable media for providing for secure offline data transfer between wireless smart devices | |
| CN100483392C (en) | System and Method for Electronic Purchase | |
| JP2007041954A (en) | Value information movement system and value information moving method | |
| CN110826043A (en) | Digital identity application system and method, identity authentication system and method | |
| CN102930435A (en) | Authentication method and system for mobile payment | |
| CN102932788A (en) | Mobile phone-based identity identification and near-field payment method | |
| CN104778579A (en) | Induction payment method and device based on electronic identity recognition carrier | |
| CN104363589A (en) | Identity authentication method, device and terminal | |
| Mahansaria et al. | Secure authentication for ATM transactions using NFC technology | |
| CN105704092A (en) | User identity authentication method, device and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant | ||
| C56 | Change in the name or address of the patentee | ||
| CP02 | Change in the address of a patent holder |
Address after: 212028 Zhenjiang, Dantu Metro Industrial Park Rui East Road, No. 9 Patentee after: Jiangsu University of Science and Technology Address before: 212003 Zhenjiang City, Jiangsu province dream Creek Road, No. 2 Patentee before: Jiangsu University of Science and Technology |
|
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20120104 Termination date: 20140803 |
|
| EXPY | Termination of patent right or utility model |